CyberSOC Technical Lead

Location: Sandyford, Dublin, full onsite position

Job Type: Full-Time Permanent

About Us

Integrity360 is one of Europe’s leading cyber security specialists operating from office locations spread out across Europe, providing a comprehensive range of professional, support and managed cyber security services for our 300+ clients. With four top-class Security Operation Centers, we offer a complete end-to-end security services covering our clients’ security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response, Security Integration, PCI Compliance and Cyber Risk & Assurance services.

What sets Integrity360 apart is our excellent team of people that drive the business forward. The company was founded with a focus on technical expertise and that philosophy remains today. The skills and experience in our company are some of the greatest in the industry and clients remain with Integrity360 because they can rely on and trust us to go above and beyond to ensure their needs are met. Listed multiple times on Gartner Market Guides for Managed Security Services.

Job Role / Responsibilities

The purpose of the role is to manage the SOC team within Integrity360, delivering robust, scalable and innovative solutions to our customers. An ideal candidate, will have 3-5 years of experience working in a SOC environment as a capable analyst. This role will be perfect for you, if you’re looking to keep improving technical skillset, and want to take on a mentoring and development role to start your leadership journey.

Responsibilities

• Develop and mentor the Tier2 & Tier3 security analysts building a strong, technical team that pursues excellence
• Deputise for the Head of CyberSoc in their absence
• Adherence to, developing and improving core processes to ensure the smooth continuation of services, assisting in deliver a world class SOC service
• Lead Incident Response in the event of a major incident, alongside our NCSC accredited Incident Response team. Support and develop security analysts during incident engagements
• Oversight and management of team incidents, changes, and problems
• Improve the efficiency of the day-to-day duties of the Monitoring and Response teams
• Communicate to and manage internal and external stakeholders at all levels
• Drive CSOC analysts to achieve SLAs and provide world class service
• Act as an escalation point for SOC analysts and core stakeholders
• Focus on continual improvement and development of processes and changes to ensure the smooth operations of the CyberSOC
• Provide technical support and leadership for the CSOC and wider i360 teams as needed
• Strive to continually improve the SOPs, Processes, and Procedures owned  across the CyberSOC
• Lead on  mentoring andcross training initiatives for SOC teams internally, and with wider i360 teams such as IR and Detection Engineering.
• Drive the Onboarding/offboarding process for SOC customers, across the managed services suite provided by the CSOC
• Ensure governance to assist compliance with regulatory requirements, industry standards, and internal policies
• Implement a continual improvement mindset within the CyberSOC to ensure customers realise the value of the CyberSOC services
• Work with the Head of CyberSOC on the strategic direction of the CyberSOC, including technology used to provide services to customers. Utilise your technical skillset to become a thought leader for the i360 product roadmap.

Desired Skills

• Experience working with security event detection tools like IPS, SIEM, DLP, Anti-virus, etc.
• Proven ability to perform event correlation, host/ network threat analysis.
• Ability to manage incidents, engage with internal and external stakeholders, and make effective decisions to mitigate varied threats..  
• Practical experience in performing analysis on network traffic, packet captures, and documents, demonstrating success in identifying malicious behaviour.
• Strong fundamentalknowledge in Networks and Network Security.
• Understanding of Network infrastructure hardware and protocols (TCP/IP, switches, bridges, routers, proxy servers, VPN concentrators).
• Understanding of Security protocols (IPSec), and encryption technologies (3DES, AES, SHA2, TLS).
• Understanding of basic security principles such as Confidentiality, Availability, Integrity.
• Familiar with security best practices.
• Desire to improve personally and professionally, with a drive toacquire professional certifications for the benefit of the business and for self-development is encouraged.
• Review the adequacy of the security controls and their ability to protect the information system and its information.
• Experience with SIEM and SOAR solutions such as; Splunk, Sentinel, Swimlane is a plus.Experience with EDR/XDR solutions such as; Defender for Endpoint, Crowdstrike, Rapid7 is a plus.
• Strong Microsoft Word & Microsoft Excel skills required.

Certifications/Qualifications

• Security industry certifications: GSEC, GCIH, GCFA or similar security certifications.
• Ideal candidates will possess a working knowledge of Intrusion Prevention System (IPS), SIEM, SOAR & EDR/XDR.
• Experience working with threat hunting tools.

Working at Integrity360.

At Integrity360 we aim to reflect what’s important through the benefits we offer. We survey our people regularly and encourage discussions around these tops so we can understand what really makes a difference. Our benefits priorities are physical, mental, and financial wellbeing.

Mental & Physical wellbeing benefits:

• Irish Life health insurance
• Occupational Health provided by Cognate
• Bike To Work scheme
• Tax Savers commuter

Financial wellbeing:

We guarantee that every employee will have their pay reviewed at least one every year, if not more regularly. We aim to pay within the market range for all roles and keep pace with inflation on average.

What we offer:

• Twice yearly salary reviews
• 4% Contributory Pension
• Letter of Wishes Income Protection – 50% of salary, less the state benefit
• Letter of Wishes Death-in-Service cover, covering 3x your basic salary.

Other benefits include:

• 25 days’ annual leave, 1 extra day gained per year of service up to 28 days. Options to carry over 5 days.
• Our L&D program, we work with various platforms including Cybrary, Udemy, Preply, Pluralsight, Swift and HTB ensuring our people are up to date with their industry knowledge. Offering opportunities to further upskill and gain industry leading certifications.